Closed Bug 594760 Opened 9 years ago Closed 9 years ago
Content in ns Event State Manager::Post Handle Event looks unsafe
The variable is nsIContent*, but scripts may run before it is used. I don't have a testcase, but based on code this might lead to crash when using image maps and deleting the image element when it gets focus. Or something like that.
Comment on attachment 473527 [details] [diff] [review] patch Approved for 18.104.22.168 and 22.214.171.124, a=dveditz
You need to log in before you can comment on or make changes to this bug.